Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Blue Screen error


  • Please log in to reply
15 replies to this topic

#1 my*****computer

my*****computer

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 15 September 2012 - 10:51 PM

Hi I'm not sure if this is the right place to post this but I need some help with my computer. I was watching Its Always Sunny in Philadelphia online, and I got a pop up that told me to run windows (I think, I don't exactly remember what the program was). I accidentally hit yes and my cpu got blue screened but I noticed it was only for one of the two users on the computer. Any idea on how to fix this?

Edited by hamluis, 16 September 2012 - 09:01 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 caperjac

caperjac

  • Members
  • 1,649 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NS. CAN
  • Local time:01:07 AM

Posted 16 September 2012 - 07:08 AM

hi, start by scanning you computer for viruses

My answers are my opinion only,usually


#3 Julia G

Julia G

  • Members
  • 138 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:EUROPE
  • Local time:11:07 PM

Posted 16 September 2012 - 07:08 AM

Hi,

that's a malware problem.

Please go to that forum for help.

#4 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 12:31 PM

Ok so when I went to msconfig and did a diagnostic boot it worked fine. I reset and now its working. I did find a process called 6500ce843060e that keeps telling me to run adobeflashplayer and reloads everytime i hit no. It is like the same thing that caused the whole thing, except its not called windows this time. Any help?

#5 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 01:12 PM

Update I was in the middle of surfing the web and it blue screened out of no where.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:07 PM

Posted 16 September 2012 - 02:21 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#7 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 03:30 PM

The problem actually went away but the TDSSkiller got rid of a trojan as well. I guess i forgot to the a full scan with malwarebytes and only did a quick one. Thanks for the help though. Should I still post the log?

Edited by my*****computer, 16 September 2012 - 03:34 PM.


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:07 PM

Posted 16 September 2012 - 04:04 PM

Yes

#9 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 04:52 PM

13:22:43.0509 5732 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
13:22:43.0968 5732 ============================================================
13:22:43.0968 5732 Current date / time: 2012/09/16 13:22:43.0968
13:22:43.0968 5732 SystemInfo:
13:22:43.0968 5732
13:22:43.0969 5732 OS Version: 6.1.7600 ServicePack: 0.0
13:22:43.0969 5732 Product type: Workstation
13:22:43.0969 5732 ComputerName: NATHAN-PC
13:22:43.0969 5732 UserName: Nathan
13:22:43.0969 5732 Windows directory: C:\Windows
13:22:43.0969 5732 System windows directory: C:\Windows
13:22:43.0969 5732 Processor architecture: Intel x86
13:22:43.0969 5732 Number of processors: 2
13:22:43.0969 5732 Page size: 0x1000
13:22:43.0969 5732 Boot type: Normal boot
13:22:43.0969 5732 ============================================================
13:22:45.0147 5732 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:22:45.0229 5732 ============================================================
13:22:45.0229 5732 \Device\Harddisk0\DR0:
13:22:45.0239 5732 MBR partitions:
13:22:45.0239 5732 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x132D000
13:22:45.0239 5732 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1341000, BlocksNum 0x1BE67800
13:22:45.0239 5732 ============================================================
13:22:45.0337 5732 C: <-> \Device\Harddisk0\DR0\Partition2
13:22:45.0359 5732 ============================================================
13:22:45.0359 5732 Initialize success
13:22:45.0359 5732 ============================================================
13:22:52.0895 4876 ============================================================
13:22:52.0895 4876 Scan started
13:22:52.0895 4876 Mode: Manual;
13:22:52.0895 4876 ============================================================
13:22:53.0781 4876 ================ Scan system memory ========================
13:22:53.0781 4876 System memory - ok
13:22:53.0783 4876 ================ Scan services =============================
13:22:53.0936 4876 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
13:22:53.0938 4876 !SASCORE - ok
13:22:54.0097 4876 [ BF02F806C873ABB04B197161E8E5A316 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
13:22:54.0099 4876 1394ohci - ok
13:22:54.0111 4876 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
13:22:54.0114 4876 ACPI - ok
13:22:54.0122 4876 Scan interrupted by user!
13:22:54.0123 4876 ================ Scan global ===============================
13:22:54.0123 4876 Scan interrupted by user!
13:22:54.0123 4876 ================ Scan MBR ==================================
13:22:54.0123 4876 Scan interrupted by user!
13:22:54.0123 4876 ================ Scan VBR ==================================
13:22:54.0123 4876 Scan interrupted by user!
13:22:54.0123 4876 ============================================================
13:22:54.0123 4876 Scan finished
13:22:54.0123 4876 ============================================================
13:22:54.0129 2140 Detected object count: 0
13:22:54.0129 2140 Actual detected object count: 0
13:23:02.0835 3024 ============================================================
13:23:02.0835 3024 Scan started
13:23:02.0835 3024 Mode: Manual; TDLFS;
13:23:02.0835 3024 ============================================================
13:23:03.0079 3024 ================ Scan system memory ========================
13:23:03.0079 3024 System memory - ok
13:23:03.0080 3024 ================ Scan services =============================
13:23:03.0152 3024 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
13:23:03.0153 3024 !SASCORE - ok
13:23:03.0238 3024 [ BF02F806C873ABB04B197161E8E5A316 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
13:23:03.0239 3024 1394ohci - ok
13:23:03.0251 3024 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
13:23:03.0253 3024 ACPI - ok
13:23:03.0265 3024 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
13:23:03.0266 3024 AcpiPmi - ok
13:23:03.0323 3024 [ F3CD7B20B27D1772C946DF993FF3635C ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
13:23:03.0325 3024 AdobeFlashPlayerUpdateSvc - ok
13:23:03.0350 3024 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:23:03.0354 3024 adp94xx - ok
13:23:03.0364 3024 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:23:03.0367 3024 adpahci - ok
13:23:03.0390 3024 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:23:03.0392 3024 adpu320 - ok
13:23:03.0413 3024 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:23:03.0414 3024 AeLookupSvc - ok
13:23:03.0431 3024 [ 7A841462AD4749F8A07B27AE8E8947B8 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
13:23:03.0445 3024 AERTFilters - ok
13:23:03.0469 3024 [ DDC040FDB01EF1712A6B13E52AFB104C ] AFD C:\Windows\system32\drivers\afd.sys
13:23:03.0472 3024 AFD - ok
13:23:03.0499 3024 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
13:23:03.0500 3024 agp440 - ok
13:23:03.0509 3024 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
13:23:03.0510 3024 aic78xx - ok
13:23:03.0530 3024 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
13:23:03.0532 3024 ALG - ok
13:23:03.0541 3024 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
13:23:03.0542 3024 aliide - ok
13:23:03.0546 3024 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
13:23:03.0547 3024 amdagp - ok
13:23:03.0555 3024 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
13:23:03.0556 3024 amdide - ok
13:23:03.0568 3024 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:23:03.0569 3024 AmdK8 - ok
13:23:03.0580 3024 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:23:03.0581 3024 AmdPPM - ok
13:23:03.0613 3024 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:23:03.0614 3024 amdsata - ok
13:23:03.0625 3024 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:23:03.0627 3024 amdsbs - ok
13:23:03.0655 3024 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:23:03.0656 3024 amdxata - ok
13:23:03.0663 3024 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
13:23:03.0664 3024 AppID - ok
13:23:03.0680 3024 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:23:03.0682 3024 AppIDSvc - ok
13:23:03.0694 3024 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
13:23:03.0696 3024 Appinfo - ok
13:23:03.0748 3024 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:23:03.0751 3024 Apple Mobile Device - ok
13:23:03.0772 3024 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
13:23:03.0774 3024 arc - ok
13:23:03.0780 3024 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:23:03.0782 3024 arcsas - ok
13:23:03.0829 3024 [ 39CDCB109BF200CC8A05B9C7E6272D11 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:23:03.0830 3024 aspnet_state - ok
13:23:03.0857 3024 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:23:03.0858 3024 AsyncMac - ok
13:23:03.0873 3024 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
13:23:03.0873 3024 atapi - ok
13:23:03.0896 3024 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:23:03.0900 3024 AudioEndpointBuilder - ok
13:23:03.0907 3024 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
13:23:03.0909 3024 Audiosrv - ok
13:23:03.0925 3024 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:23:03.0927 3024 AxInstSV - ok
13:23:03.0942 3024 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
13:23:03.0947 3024 b06bdrv - ok
13:23:03.0961 3024 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
13:23:03.0964 3024 b57nd60x - ok
13:23:03.0970 3024 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
13:23:03.0972 3024 BDESVC - ok
13:23:03.0985 3024 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
13:23:03.0987 3024 Beep - ok
13:23:03.0998 3024 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:23:03.0999 3024 blbdrive - ok
13:23:04.0054 3024 [ F2060A34C8A75BC24A9222EB4F8C07BD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:23:04.0058 3024 Bonjour Service - ok
13:23:04.0083 3024 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:23:04.0085 3024 bowser - ok
13:23:04.0106 3024 [ 104C980400850EA84F86CD31AE2EEECE ] BPowMon C:\Program Files\Broadcom\BPowMon\BPowMon.exe
13:23:04.0108 3024 BPowMon - ok
13:23:04.0118 3024 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:23:04.0119 3024 BrFiltLo - ok
13:23:04.0131 3024 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:23:04.0132 3024 BrFiltUp - ok
13:23:04.0175 3024 [ 598E1280E7FF3744F4B8329366CC5635 ] Browser C:\Windows\System32\browser.dll
13:23:04.0177 3024 Browser - ok
13:23:04.0187 3024 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:23:04.0190 3024 Brserid - ok
13:23:04.0197 3024 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:23:04.0199 3024 BrSerWdm - ok
13:23:04.0210 3024 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:23:04.0211 3024 BrUsbMdm - ok
13:23:04.0217 3024 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:23:04.0218 3024 BrUsbSer - ok
13:23:04.0226 3024 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:23:04.0228 3024 BTHMODEM - ok
13:23:04.0236 3024 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
13:23:04.0237 3024 bthserv - ok
13:23:04.0259 3024 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:23:04.0261 3024 cdfs - ok
13:23:04.0287 3024 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:23:04.0289 3024 cdrom - ok
13:23:04.0294 3024 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
13:23:04.0295 3024 CertPropSvc - ok
13:23:04.0307 3024 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:23:04.0309 3024 circlass - ok
13:23:04.0320 3024 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
13:23:04.0323 3024 CLFS - ok
13:23:04.0337 3024 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:23:04.0350 3024 clr_optimization_v2.0.50727_32 - ok
13:23:04.0383 3024 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:23:04.0385 3024 clr_optimization_v4.0.30319_32 - ok
13:23:04.0399 3024 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:23:04.0400 3024 CmBatt - ok
13:23:04.0407 3024 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
13:23:04.0409 3024 cmdide - ok
13:23:04.0422 3024 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys
13:23:04.0425 3024 CNG - ok
13:23:04.0434 3024 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:23:04.0435 3024 Compbatt - ok
13:23:04.0449 3024 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:23:04.0450 3024 CompositeBus - ok
13:23:04.0453 3024 COMSysApp - ok
13:23:04.0482 3024 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:23:04.0483 3024 crcdisk - ok
13:23:04.0500 3024 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:23:04.0502 3024 CryptSvc - ok
13:23:04.0570 3024 [ 61A86809B62769643892BC0812B204AA ] cvhsvc C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:23:04.0587 3024 cvhsvc - ok
13:23:04.0631 3024 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
13:23:04.0635 3024 DcomLaunch - ok
13:23:04.0656 3024 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
13:23:04.0659 3024 defragsvc - ok
13:23:04.0681 3024 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:23:04.0683 3024 DfsC - ok
13:23:04.0723 3024 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
13:23:04.0726 3024 Dhcp - ok
13:23:04.0733 3024 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
13:23:04.0734 3024 discache - ok
13:23:04.0747 3024 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:23:04.0749 3024 Disk - ok
13:23:04.0783 3024 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:23:04.0784 3024 Dnscache - ok
13:23:04.0802 3024 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
13:23:04.0804 3024 dot3svc - ok
13:23:04.0817 3024 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
13:23:04.0819 3024 DPS - ok
13:23:04.0841 3024 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:23:04.0843 3024 drmkaud - ok
13:23:04.0888 3024 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:23:04.0905 3024 DXGKrnl - ok
13:23:04.0909 3024 EagleNT - ok
13:23:04.0913 3024 EagleXNt - ok
13:23:04.0934 3024 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
13:23:04.0936 3024 EapHost - ok
13:23:04.0998 3024 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
13:23:05.0048 3024 ebdrv - ok
13:23:05.0063 3024 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe
13:23:05.0065 3024 EFS - ok
13:23:05.0107 3024 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:23:05.0124 3024 ehRecvr - ok
13:23:05.0142 3024 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
13:23:05.0143 3024 ehSched - ok
13:23:05.0166 3024 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:23:05.0171 3024 elxstor - ok
13:23:05.0178 3024 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
13:23:05.0179 3024 ErrDev - ok
13:23:05.0224 3024 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
13:23:05.0228 3024 EventSystem - ok
13:23:05.0239 3024 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
13:23:05.0242 3024 exfat - ok
13:23:05.0250 3024 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:23:05.0252 3024 fastfat - ok
13:23:05.0270 3024 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
13:23:05.0275 3024 Fax - ok
13:23:05.0285 3024 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:23:05.0286 3024 fdc - ok
13:23:05.0298 3024 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
13:23:05.0299 3024 fdPHost - ok
13:23:05.0310 3024 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
13:23:05.0311 3024 FDResPub - ok
13:23:05.0320 3024 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:23:05.0321 3024 FileInfo - ok
13:23:05.0328 3024 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:23:05.0329 3024 Filetrace - ok
13:23:05.0347 3024 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:23:05.0348 3024 flpydisk - ok
13:23:05.0364 3024 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:23:05.0366 3024 FltMgr - ok
13:23:05.0400 3024 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\Windows\system32\FntCache.dll
13:23:05.0417 3024 FontCache - ok
13:23:05.0455 3024 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:23:05.0457 3024 FontCache3.0.0.0 - ok
13:23:05.0478 3024 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:23:05.0479 3024 FsDepends - ok
13:23:05.0493 3024 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:23:05.0494 3024 Fs_Rec - ok
13:23:05.0532 3024 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:23:05.0534 3024 fvevol - ok
13:23:05.0542 3024 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:23:05.0543 3024 gagp30kx - ok
13:23:05.0575 3024 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:23:05.0577 3024 GEARAspiWDM - ok
13:23:05.0607 3024 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
13:23:05.0624 3024 gpsvc - ok
13:23:05.0643 3024 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:23:05.0644 3024 hcw85cir - ok
13:23:05.0651 3024 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:23:05.0653 3024 HDAudBus - ok
13:23:05.0663 3024 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:23:05.0664 3024 HidBatt - ok
13:23:05.0677 3024 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:23:05.0678 3024 HidBth - ok
13:23:05.0690 3024 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:23:05.0691 3024 HidIr - ok
13:23:05.0700 3024 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
13:23:05.0702 3024 hidserv - ok
13:23:05.0714 3024 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:23:05.0716 3024 HidUsb - ok
13:23:05.0732 3024 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:23:05.0734 3024 hkmsvc - ok
13:23:05.0743 3024 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:23:05.0747 3024 HomeGroupListener - ok
13:23:05.0766 3024 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:23:05.0769 3024 HomeGroupProvider - ok
13:23:05.0778 3024 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
13:23:05.0780 3024 HpSAMD - ok
13:23:05.0799 3024 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:23:05.0804 3024 HTTP - ok
13:23:05.0816 3024 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:23:05.0817 3024 hwpolicy - ok
13:23:05.0827 3024 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:23:05.0829 3024 i8042prt - ok
13:23:05.0869 3024 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:23:05.0872 3024 iaStorV - ok
13:23:05.0907 3024 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:23:05.0925 3024 idsvc - ok
13:23:06.0084 3024 [ 8266AE06DF974E5BA047B3E9E9E70B3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
13:23:06.0219 3024 igfx - ok
13:23:06.0239 3024 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:23:06.0240 3024 iirsp - ok
13:23:06.0271 3024 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
13:23:06.0288 3024 IKEEXT - ok
13:23:06.0342 3024 [ 94B1FF5D243D34B31380A2F79FC48959 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
13:23:06.0401 3024 IntcAzAudAddService - ok
13:23:06.0422 3024 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
13:23:06.0423 3024 intelide - ok
13:23:06.0441 3024 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:23:06.0442 3024 intelppm - ok
13:23:06.0461 3024 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:23:06.0464 3024 IPBusEnum - ok
13:23:06.0470 3024 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
13:23:06.0471 3024 IPMIDRV - ok
13:23:06.0480 3024 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:23:06.0481 3024 IPNAT - ok
13:23:06.0525 3024 [ B84A28B3984185EDA8867541AF14CDDB ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:23:06.0542 3024 iPod Service - ok
13:23:06.0551 3024 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:23:06.0552 3024 IRENUM - ok
13:23:06.0556 3024 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
13:23:06.0558 3024 isapnp - ok
13:23:06.0569 3024 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:23:06.0571 3024 iScsiPrt - ok
13:23:06.0597 3024 [ 7EA81534E80570BDF6EE4A4248BBA4D6 ] k57nd60x C:\Windows\system32\DRIVERS\k57nd60x.sys
13:23:06.0600 3024 k57nd60x - ok
13:23:06.0609 3024 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:23:06.0611 3024 kbdclass - ok
13:23:06.0620 3024 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:23:06.0621 3024 kbdhid - ok
13:23:06.0628 3024 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe
13:23:06.0629 3024 KeyIso - ok
13:23:06.0640 3024 [ E36A061EC11B373826905B21BE10948F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:23:06.0642 3024 KSecDD - ok
13:23:06.0672 3024 [ 365C6154BBBC5377173F1CA7BFB6CC59 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:23:06.0674 3024 KSecPkg - ok
13:23:06.0696 3024 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
13:23:06.0700 3024 KtmRm - ok
13:23:06.0739 3024 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\system32\srvsvc.dll
13:23:06.0742 3024 LanmanServer - ok
13:23:06.0763 3024 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:23:06.0766 3024 LanmanWorkstation - ok
13:23:06.0783 3024 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:23:06.0784 3024 lltdio - ok
13:23:06.0803 3024 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:23:06.0806 3024 lltdsvc - ok
13:23:06.0815 3024 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
13:23:06.0817 3024 lmhosts - ok
13:23:06.0829 3024 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:23:06.0831 3024 LSI_FC - ok
13:23:06.0840 3024 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:23:06.0841 3024 LSI_SAS - ok
13:23:06.0851 3024 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:23:06.0852 3024 LSI_SAS2 - ok
13:23:06.0859 3024 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:23:06.0861 3024 LSI_SCSI - ok
13:23:06.0870 3024 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
13:23:06.0871 3024 luafv - ok
13:23:06.0949 3024 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
13:23:06.0952 3024 McComponentHostService - ok
13:23:06.0978 3024 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:23:06.0980 3024 Mcx2Svc - ok
13:23:07.0004 3024 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:23:07.0005 3024 megasas - ok
13:23:07.0021 3024 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:23:07.0024 3024 MegaSR - ok
13:23:07.0045 3024 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
13:23:07.0047 3024 MMCSS - ok
13:23:07.0057 3024 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
13:23:07.0059 3024 Modem - ok
13:23:07.0066 3024 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:23:07.0067 3024 monitor - ok
13:23:07.0079 3024 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:23:07.0081 3024 mouclass - ok
13:23:07.0088 3024 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:23:07.0090 3024 mouhid - ok
13:23:07.0103 3024 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:23:07.0105 3024 mountmgr - ok
13:23:07.0150 3024 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:23:07.0153 3024 MozillaMaintenance - ok
13:23:07.0165 3024 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
13:23:07.0167 3024 mpio - ok
13:23:07.0180 3024 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:23:07.0182 3024 mpsdrv - ok
13:23:07.0191 3024 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:23:07.0193 3024 MRxDAV - ok
13:23:07.0224 3024 [ B4C76EF46322A9711C7B0F4E21EF6EA5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:23:07.0226 3024 mrxsmb - ok
13:23:07.0238 3024 [ E593D45024A3FDD11E93CC4A6CA91101 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:23:07.0241 3024 mrxsmb10 - ok
13:23:07.0249 3024 [ A9F86C82C9CC3B679CC3957E1183A30F ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:23:07.0251 3024 mrxsmb20 - ok
13:23:07.0269 3024 [ CB5D37E91135B0F15CEE64D1F1BA5DE5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
13:23:07.0271 3024 msahci - ok
13:23:07.0279 3024 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
13:23:07.0280 3024 msdsm - ok
13:23:07.0302 3024 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
13:23:07.0305 3024 MSDTC - ok
13:23:07.0322 3024 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:23:07.0323 3024 Msfs - ok
13:23:07.0336 3024 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:23:07.0337 3024 mshidkmdf - ok
13:23:07.0343 3024 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
13:23:07.0344 3024 msisadrv - ok
13:23:07.0362 3024 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:23:07.0365 3024 MSiSCSI - ok
13:23:07.0368 3024 msiserver - ok
13:23:07.0383 3024 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:23:07.0384 3024 MSKSSRV - ok
13:23:07.0394 3024 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:23:07.0395 3024 MSPCLOCK - ok
13:23:07.0402 3024 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:23:07.0403 3024 MSPQM - ok
13:23:07.0417 3024 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:23:07.0419 3024 MsRPC - ok
13:23:07.0436 3024 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:23:07.0437 3024 mssmbios - ok
13:23:07.0445 3024 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:23:07.0446 3024 MSTEE - ok
13:23:07.0459 3024 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:23:07.0460 3024 MTConfig - ok
13:23:07.0472 3024 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
13:23:07.0474 3024 Mup - ok
13:23:07.0527 3024 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
13:23:07.0531 3024 napagent - ok
13:23:07.0544 3024 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:23:07.0547 3024 NativeWifiP - ok
13:23:07.0563 3024 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:23:07.0581 3024 NDIS - ok
13:23:07.0591 3024 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:23:07.0593 3024 NdisCap - ok
13:23:07.0599 3024 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:23:07.0600 3024 NdisTapi - ok
13:23:07.0611 3024 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:23:07.0612 3024 Ndisuio - ok
13:23:07.0619 3024 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:23:07.0621 3024 NdisWan - ok
13:23:07.0633 3024 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:23:07.0635 3024 NDProxy - ok
13:23:07.0645 3024 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:23:07.0646 3024 NetBIOS - ok
13:23:07.0656 3024 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:23:07.0658 3024 NetBT - ok
13:23:07.0669 3024 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe
13:23:07.0670 3024 Netlogon - ok
13:23:07.0692 3024 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
13:23:07.0695 3024 Netman - ok
13:23:07.0711 3024 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
13:23:07.0715 3024 netprofm - ok
13:23:07.0756 3024 [ 76B1157EF850830C5ECE61D3E591CA8B ] netr73 C:\Windows\system32\DRIVERS\netr73.sys
13:23:07.0765 3024 netr73 - ok
13:23:07.0786 3024 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:23:07.0788 3024 NetTcpPortSharing - ok
13:23:07.0811 3024 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:23:07.0813 3024 nfrd960 - ok
13:23:07.0840 3024 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
13:23:07.0844 3024 NlaSvc - ok
13:23:07.0850 3024 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:23:07.0851 3024 Npfs - ok
13:23:07.0860 3024 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
13:23:07.0862 3024 nsi - ok
13:23:07.0869 3024 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:23:07.0870 3024 nsiproxy - ok
13:23:07.0919 3024 [ 187002CE05693C306F43C873F821381F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:23:07.0945 3024 Ntfs - ok
13:23:07.0954 3024 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
13:23:07.0955 3024 Null - ok
13:23:07.0986 3024 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:23:07.0988 3024 nvraid - ok
13:23:08.0001 3024 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:23:08.0003 3024 nvstor - ok
13:23:08.0017 3024 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
13:23:08.0019 3024 nv_agp - ok
13:23:08.0027 3024 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:23:08.0029 3024 ohci1394 - ok
13:23:08.0061 3024 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:23:08.0064 3024 ose - ok
13:23:08.0188 3024 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:23:08.0289 3024 osppsvc - ok
13:23:08.0310 3024 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:23:08.0313 3024 p2pimsvc - ok
13:23:08.0338 3024 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
13:23:08.0342 3024 p2psvc - ok
13:23:08.0356 3024 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:23:08.0358 3024 Parport - ok
13:23:08.0373 3024 [ FF4218952B51DE44FE910953A3E686B9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:23:08.0374 3024 partmgr - ok
13:23:08.0388 3024 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
13:23:08.0389 3024 Parvdm - ok
13:23:08.0392 3024 pbfilter - ok
13:23:08.0401 3024 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:23:08.0404 3024 PcaSvc - ok
13:23:08.0425 3024 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
13:23:08.0428 3024 pci - ok
13:23:08.0434 3024 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
13:23:08.0452 3024 pciide - ok
13:23:08.0473 3024 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:23:08.0475 3024 pcmcia - ok
13:23:08.0484 3024 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
13:23:08.0485 3024 pcw - ok
13:23:08.0506 3024 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:23:08.0523 3024 PEAUTH - ok
13:23:08.0571 3024 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
13:23:08.0598 3024 pla - ok
13:23:08.0620 3024 [ 2CC2008F1296968FBA162ED9F9AFE328 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:23:08.0640 3024 PlugPlay - ok
13:23:08.0656 3024 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:23:08.0658 3024 PNRPAutoReg - ok
13:23:08.0667 3024 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:23:08.0670 3024 PNRPsvc - ok
13:23:08.0690 3024 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:23:08.0713 3024 PolicyAgent - ok
13:23:08.0737 3024 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
13:23:08.0740 3024 Power - ok
13:23:08.0754 3024 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:23:08.0756 3024 PptpMiniport - ok
13:23:08.0770 3024 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:23:08.0771 3024 Processor - ok
13:23:08.0793 3024 [ 630CF26F0227498B7D5A92B12548960F ] ProfSvc C:\Windows\system32\profsvc.dll
13:23:08.0796 3024 ProfSvc - ok
13:23:08.0799 3024 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:23:08.0801 3024 ProtectedStorage - ok
13:23:08.0809 3024 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:23:08.0811 3024 Psched - ok
13:23:08.0830 3024 [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
13:23:08.0849 3024 PxHelp20 - ok
13:23:08.0893 3024 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:23:08.0919 3024 ql2300 - ok
13:23:08.0931 3024 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:23:08.0932 3024 ql40xx - ok
13:23:08.0953 3024 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
13:23:08.0957 3024 QWAVE - ok
13:23:08.0963 3024 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:23:08.0964 3024 QWAVEdrv - ok
13:23:08.0977 3024 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:23:08.0978 3024 RasAcd - ok
13:23:08.0990 3024 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:23:08.0991 3024 RasAgileVpn - ok
13:23:09.0005 3024 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
13:23:09.0008 3024 RasAuto - ok
13:23:09.0020 3024 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:23:09.0022 3024 Rasl2tp - ok
13:23:09.0039 3024 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
13:23:09.0043 3024 RasMan - ok
13:23:09.0051 3024 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:23:09.0053 3024 RasPppoe - ok
13:23:09.0074 3024 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:23:09.0076 3024 RasSstp - ok
13:23:09.0088 3024 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:23:09.0091 3024 rdbss - ok
13:23:09.0099 3024 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:23:09.0101 3024 rdpbus - ok
13:23:09.0107 3024 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:23:09.0109 3024 RDPCDD - ok
13:23:09.0120 3024 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:23:09.0121 3024 RDPENCDD - ok
13:23:09.0133 3024 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:23:09.0134 3024 RDPREFMP - ok
13:23:09.0146 3024 [ 801371BA9782282892D00AADB08EE367 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:23:09.0148 3024 RDPWD - ok
13:23:09.0158 3024 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:23:09.0160 3024 rdyboost - ok
13:23:09.0188 3024 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
13:23:09.0191 3024 RemoteAccess - ok
13:23:09.0209 3024 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:23:09.0212 3024 RemoteRegistry - ok
13:23:09.0230 3024 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:23:09.0232 3024 RpcEptMapper - ok
13:23:09.0255 3024 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
13:23:09.0275 3024 RpcLocator - ok
13:23:09.0301 3024 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
13:23:09.0304 3024 RpcSs - ok
13:23:09.0324 3024 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:23:09.0325 3024 rspndr - ok
13:23:09.0334 3024 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe
13:23:09.0335 3024 SamSs - ok
13:23:09.0360 3024 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
13:23:09.0361 3024 SASDIFSV - ok
13:23:09.0387 3024 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
13:23:09.0388 3024 SASKUTIL - ok
13:23:09.0397 3024 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
13:23:09.0398 3024 sbp2port - ok
13:23:09.0472 3024 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
13:23:09.0498 3024 SBSDWSCService - ok
13:23:09.0524 3024 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:23:09.0527 3024 SCardSvr - ok
13:23:09.0541 3024 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:23:09.0542 3024 scfilter - ok
13:23:09.0584 3024 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll
13:23:09.0601 3024 Schedule - ok
13:23:09.0614 3024 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:23:09.0615 3024 SCPolicySvc - ok
13:23:09.0635 3024 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:23:09.0638 3024 SDRSVC - ok
13:23:09.0681 3024 [ D358E077A0A05D9B12DA22D137EE8464 ] SeaPort C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
13:23:09.0683 3024 SeaPort - ok
13:23:09.0702 3024 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:23:09.0704 3024 secdrv - ok
13:23:09.0718 3024 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
13:23:09.0720 3024 seclogon - ok
13:23:09.0729 3024 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
13:23:09.0732 3024 SENS - ok
13:23:09.0754 3024 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:23:09.0757 3024 SensrSvc - ok
13:23:09.0770 3024 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:23:09.0771 3024 Serenum - ok
13:23:09.0780 3024 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:23:09.0782 3024 Serial - ok
13:23:09.0791 3024 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:23:09.0792 3024 sermouse - ok
13:23:09.0806 3024 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
13:23:09.0809 3024 SessionEnv - ok
13:23:09.0839 3024 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:23:09.0840 3024 sffdisk - ok
13:23:09.0852 3024 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:23:09.0854 3024 sffp_mmc - ok
13:23:09.0863 3024 [ A0708BBD07D245C06FF9DE549CA47185 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:23:09.0864 3024 sffp_sd - ok
13:23:09.0870 3024 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:23:09.0872 3024 sfloppy - ok
13:23:09.0912 3024 [ CC895997C0995A07B6B2779A3B21918B ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
13:23:09.0929 3024 Sftfs - ok
13:23:09.0978 3024 [ 05D2B0D0F1DB139970D4AF18C679429D ] sftlist C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
13:23:09.0983 3024 sftlist - ok
13:23:09.0993 3024 [ CF5E9798637795DB59697F5E40FCA993 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
13:23:09.0996 3024 Sftplay - ok
13:23:10.0006 3024 [ 4C8076FF8938B365EEEC9123969E0350 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
13:23:10.0025 3024 Sftredir - ok
13:23:10.0045 3024 [ 6095A5F221ECA9DADA2C9EE80EC0D92D ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
13:23:10.0047 3024 Sftvol - ok
13:23:10.0063 3024 [ E6ED4F02B5A151BB44DE383B365C2117 ] sftvsa C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
13:23:10.0065 3024 sftvsa - ok
13:23:10.0088 3024 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:23:10.0092 3024 ShellHWDetection - ok
13:23:10.0112 3024 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
13:23:10.0113 3024 sisagp - ok
13:23:10.0123 3024 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:23:10.0124 3024 SiSRaid2 - ok
13:23:10.0138 3024 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:23:10.0140 3024 SiSRaid4 - ok
13:23:10.0146 3024 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:23:10.0147 3024 Smb - ok
13:23:10.0163 3024 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:23:10.0165 3024 SNMPTRAP - ok
13:23:10.0173 3024 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
13:23:10.0175 3024 spldr - ok
13:23:10.0205 3024 [ D1BB750EB51694DE183E08B9C33BE5B2 ] Spooler C:\Windows\System32\spoolsv.exe
13:23:10.0209 3024 Spooler - ok
13:23:10.0261 3024 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
13:23:10.0312 3024 sppsvc - ok
13:23:10.0333 3024 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:23:10.0336 3024 sppuinotify - ok
13:23:10.0375 3024 [ 4A9B0F215DE2519E2363F91DF25C1E97 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:23:10.0378 3024 srv - ok
13:23:10.0394 3024 [ 14C44875518AE1C982E54EA8C5F7FE28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:23:10.0398 3024 srv2 - ok
13:23:10.0410 3024 [ 07A14223B0A50E76ADE003FDF95D4FEC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:23:10.0412 3024 srvnet - ok
13:23:10.0422 3024 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:23:10.0425 3024 SSDPSRV - ok
13:23:10.0433 3024 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:23:10.0435 3024 SstpSvc - ok
13:23:10.0453 3024 Steam Client Service - ok
13:23:10.0471 3024 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:23:10.0473 3024 stexstor - ok
13:23:10.0500 3024 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
13:23:10.0502 3024 StillCam - ok
13:23:10.0528 3024 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
13:23:10.0533 3024 StiSvc - ok
13:23:10.0557 3024 [ E476C66713C842F58E61A95826ED1D57 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
13:23:10.0559 3024 stllssvr - ok
13:23:10.0572 3024 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:23:10.0573 3024 swenum - ok
13:23:10.0590 3024 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
13:23:10.0595 3024 swprv - ok
13:23:10.0625 3024 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
13:23:10.0651 3024 SysMain - ok
13:23:10.0661 3024 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:23:10.0663 3024 TabletInputService - ok
13:23:10.0677 3024 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
13:23:10.0681 3024 TapiSrv - ok
13:23:10.0688 3024 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
13:23:10.0691 3024 TBS - ok
13:23:10.0734 3024 [ BB7F39C31C4A4417FD318E7CD184E225 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:23:10.0760 3024 Tcpip - ok
13:23:10.0784 3024 [ BB7F39C31C4A4417FD318E7CD184E225 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:23:10.0789 3024 TCPIP6 - ok
13:23:10.0823 3024 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:23:10.0824 3024 tcpipreg - ok
13:23:10.0836 3024 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:23:10.0837 3024 TDPIPE - ok
13:23:10.0848 3024 [ 7551E91EA999EE9A8E9C331D5A9C31F3 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:23:10.0849 3024 TDTCP - ok
13:23:10.0857 3024 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:23:10.0859 3024 tdx - ok
13:23:10.0943 3024 [ 8A9828975A857E477EFEF5A61BA45AC0 ] TeamViewer6 C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
13:23:10.0985 3024 TeamViewer6 - ok
13:23:11.0040 3024 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:23:11.0046 3024 TermDD - ok
13:23:11.0108 3024 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
13:23:11.0125 3024 TermService - ok
13:23:11.0138 3024 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
13:23:11.0140 3024 Themes - ok
13:23:11.0149 3024 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
13:23:11.0150 3024 THREADORDER - ok
13:23:11.0160 3024 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
13:23:11.0163 3024 TrkWks - ok
13:23:11.0195 3024 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:23:11.0198 3024 TrustedInstaller - ok
13:23:11.0207 3024 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:23:11.0208 3024 tssecsrv - ok
13:23:11.0218 3024 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:23:11.0220 3024 tunnel - ok
13:23:11.0240 3024 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:23:11.0242 3024 uagp35 - ok
13:23:11.0263 3024 [ EB0A7BD4D471AC3CE55564A4C55B9D8E ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:23:11.0266 3024 udfs - ok
13:23:11.0285 3024 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:23:11.0287 3024 UI0Detect - ok
13:23:11.0295 3024 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
13:23:11.0297 3024 uliagpkx - ok
13:23:11.0305 3024 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:23:11.0306 3024 umbus - ok
13:23:11.0316 3024 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:23:11.0317 3024 UmPass - ok
13:23:11.0328 3024 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
13:23:11.0332 3024 upnphost - ok
13:23:11.0362 3024 [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
13:23:11.0364 3024 USBAAPL - ok
13:23:11.0372 3024 [ 8455C4ED038EFD09E99327F9D2D48FFA ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:23:11.0374 3024 usbccgp - ok
13:23:11.0384 3024 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
13:23:11.0385 3024 usbcir - ok
13:23:11.0394 3024 [ 0EEEDD78C2BEDAC75E8ED1BA8D77878B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:23:11.0395 3024 usbehci - ok
13:23:11.0416 3024 [ BA50148445E5B2B3ABDBA208FC9B6FB5 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:23:11.0419 3024 usbhub - ok
13:23:11.0429 3024 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
13:23:11.0431 3024 usbohci - ok
13:23:11.0442 3024 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:23:11.0443 3024 usbprint - ok
13:23:11.0468 3024 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:23:11.0469 3024 usbscan - ok
13:23:11.0497 3024 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:23:11.0499 3024 USBSTOR - ok
13:23:11.0505 3024 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:23:11.0506 3024 usbuhci - ok
13:23:11.0521 3024 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
13:23:11.0524 3024 UxSms - ok
13:23:11.0531 3024 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe
13:23:11.0532 3024 VaultSvc - ok
13:23:11.0549 3024 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
13:23:11.0551 3024 vdrvroot - ok
13:23:11.0570 3024 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
13:23:11.0575 3024 vds - ok
13:23:11.0583 3024 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:23:11.0585 3024 vga - ok
13:23:11.0597 3024 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:23:11.0598 3024 VgaSave - ok
13:23:11.0606 3024 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
13:23:11.0608 3024 vhdmp - ok
13:23:11.0619 3024 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
13:23:11.0620 3024 viaagp - ok
13:23:11.0628 3024 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
13:23:11.0629 3024 ViaC7 - ok
13:23:11.0639 3024 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
13:23:11.0640 3024 viaide - ok
13:23:11.0654 3024 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
13:23:11.0655 3024 volmgr - ok
13:23:11.0666 3024 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:23:11.0669 3024 volmgrx - ok
13:23:11.0681 3024 [ 7C28B63E4C9E5C3BE7FFE53789593619 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
13:23:11.0683 3024 Suspicious file (Forged): C:\Windows\system32\DRIVERS\volsnap.sys. Real md5: 7C28B63E4C9E5C3BE7FFE53789593619, Fake md5: 58DF9D2481A56EDDE167E51B334D44FD
13:23:11.0684 3024 volsnap ( Rootkit.Win32.TDSS.tdl3 ) - infected
13:23:11.0684 3024 volsnap - detected Rootkit.Win32.TDSS.tdl3 (0)
13:23:11.0693 3024 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:23:11.0694 3024 vsmraid - ok
13:23:11.0723 3024 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
13:23:11.0741 3024 VSS - ok
13:23:11.0750 3024 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:23:11.0751 3024 vwifibus - ok
13:23:11.0776 3024 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:23:11.0778 3024 vwififlt - ok
13:23:11.0796 3024 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
13:23:11.0800 3024 W32Time - ok
13:23:11.0810 3024 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:23:11.0811 3024 WacomPen - ok
13:23:11.0817 3024 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:23:11.0819 3024 WANARP - ok
13:23:11.0822 3024 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:23:11.0823 3024 Wanarpv6 - ok
13:23:11.0876 3024 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:23:11.0902 3024 WatAdminSvc - ok
13:23:11.0936 3024 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
13:23:11.0962 3024 wbengine - ok
13:23:11.0976 3024 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:23:11.0980 3024 WbioSrvc - ok
13:23:12.0015 3024 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:23:12.0019 3024 wcncsvc - ok
13:23:12.0028 3024 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:23:12.0030 3024 WcsPlugInService - ok
13:23:12.0046 3024 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:23:12.0047 3024 Wd - ok
13:23:12.0062 3024 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:23:12.0066 3024 Wdf01000 - ok
13:23:12.0076 3024 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:23:12.0079 3024 WdiServiceHost - ok
13:23:12.0082 3024 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:23:12.0085 3024 WdiSystemHost - ok
13:23:12.0110 3024 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll
13:23:12.0113 3024 WebClient - ok
13:23:12.0122 3024 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:23:12.0126 3024 Wecsvc - ok
13:23:12.0138 3024 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:23:12.0141 3024 wercplsupport - ok
13:23:12.0154 3024 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
13:23:12.0157 3024 WerSvc - ok
13:23:12.0175 3024 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:23:12.0176 3024 WfpLwf - ok
13:23:12.0188 3024 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:23:12.0189 3024 WIMMount - ok
13:23:12.0193 3024 WinHttpAutoProxySvc - ok
13:23:12.0234 3024 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:23:12.0238 3024 Winmgmt - ok
13:23:12.0263 3024 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
13:23:12.0288 3024 WinRM - ok
13:23:12.0349 3024 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:23:12.0367 3024 Wlansvc - ok
13:23:12.0377 3024 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:23:12.0379 3024 WmiAcpi - ok
13:23:12.0400 3024 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:23:12.0403 3024 wmiApSrv - ok
13:23:12.0459 3024 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
13:23:12.0476 3024 WMPNetworkSvc - ok
13:23:12.0494 3024 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:23:12.0496 3024 WPCSvc - ok
13:23:12.0507 3024 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:23:12.0510 3024 WPDBusEnum - ok
13:23:12.0527 3024 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:23:12.0528 3024 ws2ifsl - ok
13:23:12.0531 3024 WSearch - ok
13:23:12.0551 3024 [ A52494B107AFC92DDCA21F0B64F83376 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:23:12.0553 3024 WudfPf - ok
13:23:12.0563 3024 [ 90A541C607DA0025AE75F0F3673945FE ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:23:12.0565 3024 WUDFRd - ok
13:23:12.0574 3024 [ F1FCB56102A8373ED86B6FF08FB17D67 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:23:12.0577 3024 wudfsvc - ok
13:23:12.0600 3024 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
13:23:12.0604 3024 WwanSvc - ok
13:23:12.0613 3024 ================ Scan global ===============================
13:23:12.0657 3024 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
13:23:12.0681 3024 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
13:23:12.0687 3024 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
13:23:12.0699 3024 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
13:23:12.0718 3024 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
13:23:12.0722 3024 [Global] - ok
13:23:12.0722 3024 ================ Scan MBR ==================================
13:23:12.0736 3024 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
13:23:12.0923 3024 \Device\Harddisk0\DR0 - ok
13:23:12.0923 3024 ================ Scan VBR ==================================
13:23:12.0925 3024 [ 265645FB7F15D265E5BE7F7E66450664 ] \Device\Harddisk0\DR0\Partition1
13:23:12.0926 3024 \Device\Harddisk0\DR0\Partition1 - ok
13:23:12.0949 3024 [ 6467BAC9535FD85164DFD1E02F213679 ] \Device\Harddisk0\DR0\Partition2
13:23:12.0951 3024 \Device\Harddisk0\DR0\Partition2 - ok
13:23:12.0951 3024 ============================================================
13:23:12.0951 3024 Scan finished
13:23:12.0951 3024 ============================================================
13:23:12.0958 3132 Detected object count: 1
13:23:12.0958 3132 Actual detected object count: 1
13:23:35.0418 3132 C:\Windows\system32\DRIVERS\volsnap.sys - copied to quarantine
13:23:35.0605 3132 Backup copy found, using it..
13:23:35.0628 3132 C:\Windows\system32\DRIVERS\volsnap.sys - will be cured on reboot
13:23:35.0628 3132 volsnap ( Rootkit.Win32.TDSS.tdl3 ) - User select action: Cure
13:23:38.0218 5828 Deinitialize success

Edited by my*****computer, 16 September 2012 - 04:59 PM.


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:07 PM

Posted 16 September 2012 - 06:44 PM

ASWMBR and ESET logs?

#11 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 07:17 PM

Do I need avast? I already have spybot S&D, Malwarebytes, and super anti spyware

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:07 PM

Posted 16 September 2012 - 07:29 PM

ASWMBR is a rootkit detector and is different from avast antivirus.

If you feel that you're good.You need not run them

safe surfing :)

#13 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 08:06 PM

Oh sorry about that haha idk much about computer programs and computers in general. I'm running ESET right now, almost done with it

#14 my*****computer

my*****computer
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:07 PM

Posted 16 September 2012 - 10:28 PM

eset:
C:\Program Files\Registry Easy\RegEasyCleaner.exe a variant of Win32/Adware.RegistryEasy application cleaned by deleting - quarantined
C:\Program Files\Search Toolbar\SearchToolbarUpdater.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\16.09.2012_13.22.43\rtkt0000\svc0000\tsk0000.dta Win32/Olmasco.E trojan deleted - quarantined
C:\Users\Admin test\AppData\Roaming\Mozilla\Firefox\Profiles\rurvfia9.default\extensions\{9ee56db9-6000-4f1d-a1c8-2cb93bf1d2c7}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Users\Nathan\AppData\Local\Temp\jar_cache3612849868431814090.tmp multiple threats deleted - quarantined
C:\Users\Nathan\AppData\Local\Temp\jar_cache3802443148859361414.tmp multiple threats deleted - quarantined
C:\Users\Nathan\AppData\Local\Temp\jar_cache7786033988737930956.tmp a variant of Java/Exploit.Agent.NDH trojan deleted - quarantined
C:\Users\Nathan\AppData\Local\Temp\nsnF5F9.tmp\afxjahc.dll Win32/Boaxxe.C trojan cleaned by deleting - quarantined
C:\Users\Nathan\AppData\Local\{742A8E39-FF20-11E1-8271-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined
C:\Users\Nathan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1\b0701-6d320d12 multiple threats deleted - quarantined
C:\Users\Nathan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\62bdb90c-140dd53d multiple threats deleted - quarantined
C:\Users\Nathan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\5fa94298-42b4588c Java/Exploit.CVE-2012-0507.BV trojan deleted - quarantined
C:\Users\Nathan\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\1cda0164-6509474d multiple threats deleted - quarantined
C:\Users\Nathan\AppData\Roaming\winsh.dll a variant of Win32/Medfos.DE trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Nathan\AppData\Roaming\Identities\Identities\afxjahc.dll Win32/Boaxxe.C trojan cleaned by deleting - quarantined
C:\Users\Nathan\AppData\Roaming\Mozilla\Firefox\Profiles\djfsqyp9.default\extensions\mzpsrnlwhm@mzpsrnlwhm.org.xpi JS/Redirector.NBX trojan deleted - quarantined
C:\Users\Nathan\AppData\Roaming\Mozilla\Firefox\Profiles\djfsqyp9.default\extensions\{9ee56db9-6000-4f1d-a1c8-2cb93bf1d2c7}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Users\Nathan\Downloads\cnet_EquationsTrialSetup_exe.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Nathan\Downloads\cnet_IEO_en_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Nathan\Downloads\RegistryEasy.exe a variant of Win32/Adware.RegistryEasy application cleaned by deleting - quarantined
C:\Users\Nathan\Downloads\WinZipRegistryOptimizer.exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Windows\$NtUninstallKB48264$\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\69928a3d-5d0916cc a variant of Java/TrojanDownloader.Agent.NDJ trojan deleted - quarantined
C:\Windows\Installer\{eaef05f3-7c47-97e5-1308-dac40bcef4ba}\U\80000032.@ a variant of Win32/Sirefef.FD trojan cleaned by deleting - quarantined
C:\Windows\winsxs\Temp\PendingDeletes\$$DeleteMe.services.exe.01cd939c7a897602.0000 Win32/Sirefef.FC trojan deleted - quarantined

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:07 PM

Posted 17 September 2012 - 12:55 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users